[libvirt] [PATCH 1/3] qemu: conf: Remove /dev/sev from the default cgroup device acl list
Erik Skultety
eskultet at redhat.com
Thu Jan 31 15:30:21 UTC 2019
On Tue, Jan 29, 2019 at 01:26:47PM +0100, Michal Privoznik wrote:
> On 1/23/19 1:57 PM, Erik Skultety wrote:
> > We should not give domains access to something they don't necessarily
> > need by default.
> >
> > Signed-off-by: Erik Skultety <eskultet at redhat.com>
> > ---
> > src/qemu/qemu.conf | 2 +-
> > src/qemu/qemu_cgroup.c | 2 +-
> > src/qemu/test_libvirtd_qemu.aug.in | 1 -
> > 3 files changed, 2 insertions(+), 3 deletions(-)
>
> ACK if you remove it from docs/drvqemu.html.in too. BTW: /dev/net/tun should
> be removed from there as well.
Thanks, fixed. I fixed the /dev/net/tun thing separately in a trivial patch.
Erik
More information about the libvir-list
mailing list